Snake rootkit

GPTKB entity

Statements (52)
Predicate Object
gptkbp:instanceOf malware
gptkbp:alsoKnownAs gptkb:Agent.BTZ
gptkb:Turla
gptkb:Uroburos
gptkbp:category Advanced Persistent Threat
cyberattack tool
gptkbp:connectsTo Russian state-sponsored actors
gptkbp:developedBy gptkb:Turla_group
gptkbp:discoveredBy 2008
gptkbp:disruptedYear 2023
gptkbp:features remote access
data theft
custom encryption
encrypted communications
modular architecture
stealth techniques
network traffic interception
command and control infrastructure
fileless persistence
kernel-level rootkit
modular plugins
https://www.w3.org/2000/01/rdf-schema#label Snake rootkit
gptkbp:interruptedBy gptkb:Swiss_Federal_Police
gptkb:Canadian_RCMP
gptkb:Dutch_Police
gptkb:German_Federal_Criminal_Police
gptkb:Operation_MEDUSA
gptkb:UK_National_Crime_Agency
gptkb:Ukraine_Cyber_Police
gptkb:Australian_Federal_Police
gptkb:US_Department_of_Justice
gptkb:Europol
gptkb:FBI
gptkbp:notableBattle gptkb:energy
gptkb:government_agency
embassies
research institutions
defense sector
diplomatic organizations
US military networks
gptkbp:platform gptkb:Windows
gptkb:MacOS
gptkb:Linux
gptkbp:type cyber espionage tool
rootkit
gptkbp:usedFor cybercrime
data exfiltration
gptkbp:writtenBy gptkb:assembly_language
C
gptkbp:bfsParent gptkb:Epic_Turla
gptkb:Turla
gptkbp:bfsLayer 6